Ubuntu Update For Python2.7 USN-2125-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Ryan Smith-Roberts discovered that Python incorrectly handled buffer sizes when using the socket.recvfrom_into() function. An attacker could possibly use this issue to cause Python to crash, resulting in denial of service, or possibly execute arbitrary code.

Affected

python2.7 on Ubuntu 13.10 , Ubuntu 12.10 , Ubuntu 12.04 LTS , Ubuntu 10.04 LTS

Severity

Classification

CVE CVE-2014-1912

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Ubuntu Update for bind9 vulnerabilities USN-418-1
Ubuntu Update for bind9 USN-1518-1
Ubuntu Update for dhcp3 vulnerability USN-803-2
Ubuntu Update for bsd-mailx USN-2455-1
Ubuntu Update for emacs23 USN-1586-1

Ubuntu Update for python2.7 USN-2125-1

Take action and discover your vulnerabilities